139.138.47.56 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States of America

运营商(isp): Cisco Systems Ironport Division

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	PNM thinks my email is DOROTHY MARTIN. They provide no way to unsubscribe or contact them when you're not the actual customer	2020-08-08 04:27:55

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.138.47.56
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 1240
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;139.138.47.56.			IN	A

;; AUTHORITY SECTION:
.			190	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020080701 1800 900 604800 86400

;; Query time: 75 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Aug 08 04:27:52 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

56.47.138.139.in-addr.arpa is an alias for 56.47.138.139.in-addr.arpa.iphmx.com.
56.47.138.139.in-addr.arpa.iphmx.com domain name pointer esa4.hc3959-80.iphmx.com.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
56.47.138.139.in-addr.arpa	canonical name = 56.47.138.139.in-addr.arpa.iphmx.com.
56.47.138.139.in-addr.arpa.iphmx.com	name = esa4.hc3959-80.iphmx.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
193.112.125.114	attackbots	Sep 14 08:38:31 hb sshd\[19545\]: Invalid user x-bot from 193.112.125.114 Sep 14 08:38:31 hb sshd\[19545\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.112.125.114 Sep 14 08:38:33 hb sshd\[19545\]: Failed password for invalid user x-bot from 193.112.125.114 port 50386 ssh2 Sep 14 08:41:39 hb sshd\[19803\]: Invalid user david from 193.112.125.114 Sep 14 08:41:39 hb sshd\[19803\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.112.125.114	2019-09-14 16:56:18
111.75.149.221	attackbotsspam	Sep 14 09:03:36 vmanager6029 postfix/smtpd\[16503\]: warning: unknown\[111.75.149.221\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 14 09:03:45 vmanager6029 postfix/smtpd\[16503\]: warning: unknown\[111.75.149.221\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2019-09-14 17:03:37
158.69.210.117	attackspam	Sep 13 22:31:14 auw2 sshd\[15704\]: Invalid user american from 158.69.210.117 Sep 13 22:31:14 auw2 sshd\[15704\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.ip-158-69-210.net Sep 13 22:31:16 auw2 sshd\[15704\]: Failed password for invalid user american from 158.69.210.117 port 50662 ssh2 Sep 13 22:35:33 auw2 sshd\[16127\]: Invalid user nobody4 from 158.69.210.117 Sep 13 22:35:33 auw2 sshd\[16127\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.ip-158-69-210.net	2019-09-14 16:43:12
180.254.118.205	attack	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-09-14 05:30:47,566 INFO [amun_request_handler] PortScan Detected on Port: 445 (180.254.118.205)	2019-09-14 16:48:52
144.76.237.184	attackbots	Unauthorized access detected from banned ip	2019-09-14 16:36:13
114.33.233.226	attackbots	Sep 13 22:59:22 sachi sshd\[14179\]: Invalid user caixa from 114.33.233.226 Sep 13 22:59:22 sachi sshd\[14179\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=114-33-233-226.hinet-ip.hinet.net Sep 13 22:59:25 sachi sshd\[14179\]: Failed password for invalid user caixa from 114.33.233.226 port 62260 ssh2 Sep 13 23:04:08 sachi sshd\[14531\]: Invalid user mw from 114.33.233.226 Sep 13 23:04:08 sachi sshd\[14531\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=114-33-233-226.hinet-ip.hinet.net	2019-09-14 17:06:38
106.13.107.106	attackbotsspam	Sep 14 10:11:58 nextcloud sshd\[18040\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.107.106 user=root Sep 14 10:12:00 nextcloud sshd\[18040\]: Failed password for root from 106.13.107.106 port 37584 ssh2 Sep 14 10:17:45 nextcloud sshd\[26242\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.107.106 user=root ...	2019-09-14 16:51:29
184.82.186.113	attackbotsspam	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-09-14 05:30:53,574 INFO [amun_request_handler] PortScan Detected on Port: 445 (184.82.186.113)	2019-09-14 16:46:03
106.248.19.115	attackspam	Sep 13 23:17:20 lcprod sshd\[29697\]: Invalid user ww from 106.248.19.115 Sep 13 23:17:20 lcprod sshd\[29697\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.248.19.115 Sep 13 23:17:22 lcprod sshd\[29697\]: Failed password for invalid user ww from 106.248.19.115 port 50068 ssh2 Sep 13 23:22:20 lcprod sshd\[30144\]: Invalid user Eevi from 106.248.19.115 Sep 13 23:22:20 lcprod sshd\[30144\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.248.19.115	2019-09-14 17:26:51
157.230.112.34	attackbots	Invalid user sadan from 157.230.112.34 port 46142	2019-09-14 17:14:08
37.192.194.50	attackspambots	2019-09-14T08:51:55.283539MailD postfix/smtpd[15292]: NOQUEUE: reject: RCPT from l37-192-194-50.novotelecom.ru[37.192.194.50]: 554 5.7.1 Service unavailable; Client host [37.192.194.50] blocked using bl.spamcop.net; Blocked - see https://www.spamcop.net/bl.shtml?37.192.194.50; from= to= proto=ESMTP helo= 2019-09-14T08:51:58.326325MailD postfix/smtpd[15292]: NOQUEUE: reject: RCPT from l37-192-194-50.novotelecom.ru[37.192.194.50]: 554 5.7.1 Service unavailable; Client host [37.192.194.50] blocked using bl.spamcop.net; Blocked - see https://www.spamcop.net/bl.shtml?37.192.194.50; from= to= proto=ESMTP helo= 2019-09-14T08:52:01.201085MailD postfix/smtpd[15292]: NOQUEUE: reject: RCPT from l37-192-194-50.novotelecom.ru[37.192.194.50]: 554 5.7.1 Service unavailable; Client host [37.192.194.50] blocked using bl.spamcop.net; Blocked - see https://www.spamcop.net/	2019-09-14 16:52:32
103.48.116.82	attack	Sep 14 10:20:12 markkoudstaal sshd[4049]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.48.116.82 Sep 14 10:20:15 markkoudstaal sshd[4049]: Failed password for invalid user imbroglio from 103.48.116.82 port 47104 ssh2 Sep 14 10:26:08 markkoudstaal sshd[4605]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.48.116.82	2019-09-14 16:54:27
153.36.242.143	attack	Sep 14 15:32:11 webhost01 sshd[26696]: Failed password for root from 153.36.242.143 port 16893 ssh2 ...	2019-09-14 16:40:11
104.248.157.14	attack	2019-09-14T08:35:27.493417abusebot-2.cloudsearch.cf sshd\[11970\]: Invalid user xue from 104.248.157.14 port 44372	2019-09-14 16:55:35
212.92.108.224	attack	RDP Bruteforce	2019-09-14 17:21:34

最近上报的IP列表

91.191.209.193	114.215.145.108	46.101.112.85	185.143.221.217
40.117.102.188	51.158.111.191	122.25.111.15	16.131.123.231
35.235.155.53	247.239.23.234	5.101.51.97	190.198.24.119
139.155.35.83	120.202.177.234	202.21.104.102	192.241.228.15
145.238.154.95	167.71.235.173	142.4.14.247	103.127.67.11